agenttesla | 9529df3fbfecefadc4ab37554a58e4cefcda0092e17ab9c17e84e3c586e7c138 | Triage

Sharing

General

Target

9529df3fbfecefadc4ab37554a58e4cefcda0092e17ab9c17e84e3c586e7c138
Size

692KB
Sample

240904-2vhwpsxhqr
MD5

f945a1be53b8c0960d6615dbfb33e826
SHA1

5f1e521241da5ea99c224bd90f00b827b7ed0b68
SHA256

9529df3fbfecefadc4ab37554a58e4cefcda0092e17ab9c17e84e3c586e7c138
SHA512

e38c91ec98f6992dddc1252258879bbb7174f7f8e902afccaafdb9968d2e878c48d4c2de7649584372a9ec94427c6d8e86492e2ca6f10687e239a6284531934b
SSDEEP

12288:wcwwV+vlu5KAv2gHzIMHbr8jyliLRTo53die/N2ihwNAD5ius2k9Gj5PaAHRpXN1:w1KK6ImbokiLRq3dieSQiua9oxaAPaNa

Score

10^/10

agenttesla discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  Guna.UI2.dll
- Size
  
  2.1MB
- MD5
  
  c19e9e6a4bc1b668d19505a0437e7f7e
- SHA1
  
  73be712aef4baa6e9dabfc237b5c039f62a847fa
- SHA256
  
  9ac8b65e5c13292a8e564187c1e7446adc4230228b669383bd7b07035ab99a82
- SHA512
  
  b6cd0af436459f35a97db2d928120c53d3691533b01e4f0e8b382f2bd81d9a9a2c57e5e2aa6ade9d6a1746d5c4b2ef6c88d3a0cf519424b34445d0d30aab61de
- SSDEEP
  
  49152:6QNztBO2+VN7N3HtnPhx70ZO4+CPXOn5PThDH2TBeHjvjiBckYf+Yh/FJ3:6Ahck2z
Score

1^/10
behavioral1 behavioral2
- Target
  
  WindowsFormsApp1.exe
- Size
  
  11KB
- MD5
  
  16bb8fd62f616a36dc0a653d041ce0c9
- SHA1
  
  031a4dcda582a3c07ac97432e782e1d9737bb8b6
- SHA256
  
  75cc29fea492a6d0cc0d88e2b92ee0cd0e13724b7179a538e33f7e624b8fb756
- SHA512
  
  539c1ad0bc02519f3e62edb98476a02bbb660bcdc990e9cf31d9c189568b7717221a5191ed19a295ed0efceceae537297ef80b908d938b6efab0fe995bc952c4
- SSDEEP
  
  192:q1zGA5NR2Ipg3EyAU9hWLPZELSoKmD5DVL3LKLrVq5bectpJVAcIfMU9Rz:qNR2Ipg3mWwLOL5KmD5DVL3LKLrkacty
Score

10^/10

agenttesla discovery keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

agenttesladiscoverykeyloggerspywarestealertrojan

behavioral4

agenttesladiscoverykeyloggerspywarestealertrojan